Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: fzQVwf95W2Prq3AWilies1Auz+lWLGT4dExmGUZAnV0=
Subject key identifier: 23:07:94:8C:21:EF:E2:7B:37:AA:CA:08:23:22:7E:9B:F6:4D:CF:5F
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0198D515608B03B994B21C472D09D4ACB1C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 1548
Signing time: Sat 23 Aug 2025 04:00:04 +0000
Manifest this update: Sat 23 Aug 2025 04:00:04 +0000
Manifest next update: Sun 24 Aug 2025 04:00:04 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: uZWnI6rm335qIY6/LFinxrjrGIyQ0RMAcy3pMGeeLAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:60:8b:03:b9:94:b2:1c:47:2d:09:d4:ac:b1:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Aug 23 04:00:04 2025 GMT
Not After : Aug 24 04:00:04 2025 GMT
Subject: CN=2307948c21efe27b37aaca0823227e9bf64dcf5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:be:55:b2:94:1b:e0:89:f4:31:e5:7d:fc:
4d:90:6e:85:3f:33:46:c2:83:38:c9:0f:b6:73:e2:
5e:05:82:dd:d4:77:d9:2c:e2:44:7d:b2:95:6e:98:
07:2a:2e:2d:f3:f5:a4:35:81:c2:54:e7:ed:c6:52:
3a:c8:b8:18:31:61:02:ad:82:fb:3d:e2:60:43:f5:
40:06:17:0b:ad:47:85:ab:e7:91:bb:1d:d3:bf:bc:
21:07:12:9a:b0:e1:4f:a7:dc:d9:bf:be:40:54:ba:
59:d0:bc:30:d8:93:3f:9d:df:af:07:98:e5:03:c1:
14:98:ab:f8:10:42:58:cc:3c:61:b7:93:e6:d5:2b:
a0:91:84:7e:b2:c4:e9:72:05:9c:f0:8e:58:db:2f:
e5:24:04:d6:fa:76:df:01:76:e8:6a:8f:c3:9e:68:
12:74:4d:93:3e:9c:7b:79:ea:57:a7:c5:f8:b6:90:
c0:cf:a7:4e:26:91:6e:c8:2f:33:92:c1:11:fa:d9:
51:c6:f8:72:c4:21:2f:61:5b:32:75:8a:71:5b:e0:
e4:7a:19:a2:84:26:1b:89:0d:3a:13:60:42:fa:b0:
3d:3c:6f:bf:62:cd:a8:a8:f9:65:43:bf:3b:3b:8c:
43:6c:1d:db:97:b0:d4:33:83:ca:d5:64:29:10:5f:
62:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:07:94:8C:21:EF:E2:7B:37:AA:CA:08:23:22:7E:9B:F6:4D:CF:5F
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:a7:b5:66:01:d5:cd:8f:2f:4f:1f:4e:b9:35:8c:69:97:da:
4f:f6:ea:db:9e:2d:10:99:1f:57:94:3e:2c:a6:14:06:24:67:
29:d7:42:9f:12:e2:8c:a4:e4:45:d9:16:18:da:d7:56:37:11:
cc:b5:0d:7a:c0:ed:10:71:cd:fe:e9:ba:3c:d3:f9:84:63:a6:
49:83:17:41:11:75:86:ac:80:37:76:54:58:0d:24:bb:3b:b2:
eb:5b:21:d8:d9:72:eb:4f:38:22:6a:29:5b:32:2b:49:55:ed:
ef:0c:f3:46:19:72:ef:64:9b:47:44:51:56:7c:59:1f:f0:fa:
75:b5:e8:2d:4f:dd:19:49:f1:fe:b0:11:f2:4a:07:96:d9:5e:
38:15:13:18:36:29:bc:f3:7e:a5:3c:c9:dd:fa:f5:6a:11:01:
1a:37:c5:52:65:df:b9:03:03:14:aa:b7:c3:77:b9:45:69:24:
21:68:9e:42:2f:98:f3:77:e7:b0:08:b1:13:2a:05:9e:b4:fc:
e6:9c:f9:91:ca:08:79:ca:cf:d4:a0:17:7a:d5:5f:d0:1b:ff:
05:59:24:c6:e7:4b:78:b5:d9:60:46:37:8b:b7:a6:1f:58:45:
66:85:12:79:c5:1a:dc:05:80:bc:90:97:a1:d9:ce:5c:2a:af:
86:ce:79:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:36:08 2025 by rpki-client